Europaisches 
Patentamt 



European 
Patent Office 



Bescheinigung Certificate 



Office europeen 
des brevets 



PCT/IB 03 / 0 3 6 4 1 
. U08.03 




Attestation 



Die angehefteten Unterla- 
gen stimmen mit der 
ursprGnglich eingereichten 
Fassung der auf dem n3ch- 
sten Blatt bezeichneten 
europSischen Patentanmel- 
dung Gberein. 



The attached documents 
are exact copies of the 
European patent application 
described on the following 
page, as originally filed. 



Les documents fixes a 
cette attestation sont 
con formes a la version 
initialement deposee de 
la demande de brevet 
europeen specifiee a la 
page suivante. 



Patentanmeldung Nr. Patent application No. Demande de brevet n° 

02078952.5 



Der President des Europaischen Patentamts; 
Im Auftrag 

For the President of the European Patent Office 

Le President de I'Office europeen des brevets 
p.o. 



R C van Dijk 



jpr AVAILABLE COPY 





Europaisches 
Patentamt 




>pean 
nt Office 



Office europeen 
des brevets 



Anmeldung Nr: 

Application no.: 02078952.5 
Demande no: 



Anmeldetag: 

Date of filing: 20.09.02 
Date de depdt: 



Anmelder/Appl 1cant( s)/Demandeur( s): 

Koninklijke Philips Electronics N.V. 
Groenewoudseweg 1 
5621 BA Eindhoven 
PAYS-BAS 



Bezelchnung der Erf1ndung/Tl tie of the 1 nvent1on/T*1 tre de l 1 Invention: 
(Falls die Bezel chnung der Erflndung nlcht angegeben 1st, slehe Beschrel bung. 
If no title Is shown please refer to the description. 
S1 aucun tltre n'est 1nd1qu6 se referer a la description.) 

A method and system for generating a common secret 



In Anspruch genommene Pr1or1at(en) / Priori ty(1es) claimed /Pr1or1te"(s) 
revend1quee( s) 

Staat/Tag/Aktenzelchen/State/Date/Flle no./Pays/Date/Nume>o de depot: 



Internationale Paten tkl ass If 1 kat1 on/International Patent Classification/ 
Classification Internationale des brevets: 

H04L9/00 

Am Anmeldetag benannte Vertragstaa ten/Contracting states designated at date of 
flUng/Etats contractants designees lors du depot: 

AT BE BG CH CY CZ DE DK EE ES FI FR GB GR IE IT LI LU MC NL PT SE SK TR 



02078952. 5 

EPVEP0/0EB Form 1014.2 - 01.2000 7001014 



2 



CCI.OCr CXXQC XJL-HJ. rnil_J.ro uir nu «ox -to ci *-to«-toz? iiv.wicj r.f/'Cia 

007 20.09.2002 11:41 

PHNL020950Br^ — 




1 20.09.2002 
A method and system for generating a common secret 



BACKGROUND OF THE INVENTION 

The invention relates to a method for generating a common seoret data item 
between a first user facility and a second user facility through by each such user facility 
executing mutually symmetric operations on respective complementary data that are based on 
5 respectively unique quantities that are at least in part secret, and wherein an outcome of said 
operations is used in both said user facilities as said common secret data item as has been 
furthermore recited in the preamble of Claim 1. 

Shared key generation is an important issue in cryptography. The issue has 
spread to application fields such as Pay TV Systems in consumer electronics and various 
10 identification procedures. The secret data item maybe used as an encryption or decryption 
key, for effecting mutual authentication among the user facilities, or other. Prior art has 
widely considered Diffie-Hellmann schemes, but these schemes disadvantageous^ lack a 
control mechanism for checking the authenticity of the calculated secret data item. 
Alternatively, a certificate based system allows to set up the shared secret data item has been 
15 proposed in US Patent 5,21 8,637, attorney docket PHQ 90.021 assigned to the present 

assignee, and among others by one of the coinventors of the present invention. This art solves 
the problem, but on the ottier hand requires a complex organization utilising at least two 
levels of public key cryptography, A first object of the present invention is to use only a 
single integrated cryptography leveL This implies that no second secret data item will be 
20 required to effect a verification operation. 

A further object of the present invention is that the system should be 
extendable with extra user facilities offering the same level of secrecy as the existing system 
realized by the invention, but without requiring additional amendations to such existing 
system. Still another object of the present invention is that knowledge of the secret data items 
25 pertaining to an arbitrarily large subset of the user facilities should not allow a 

straightforward and feasible calculation of the respective secret data item for any further user 
facility present in the system, A farther object of the present invention is to allow a compact 
representation of the various quantities and data items used. 
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SUMMARY TO THE INVENTION 

In consequence, amongst other things, it is an object of the present invention 
to provide an improved method for generating a common secret data item among two user 
facilies whilst meeting the above requirements. 



according to the characterizing part of Claim 1. In particular, a first embodiment of the 

presentfnveatfo^^ 

discussed in the explicit papa presented on CRYPTO 2001 by Dan Boneh & Matt Franklin, 
entitled 'Identity Based Encryption from the Weil Pairing". Furthermore, a second and even 

10 broader embodiment of the present invention bases on het usage of the so-called Abelian 
Varieties, and of which elliptic curves on which the Weil Pairings are effected constitute a 
sub-class. None of the above concepts have however been considered for the same manner of 
operating and objects as the present invention. Abelian varieties have been amply discussed 
in the explicit paper presented on CRYPTO 2002 by K. Rubin & A. Silverberg, entitled 

15 "Supersingttlar Abelian Varieties in Cryptology". A further advantageous aspect of the 
present invention is that it will allow compact representations due to the straightforward 
mathematical procedures effectively used. 



second user facility, and being arranged to communicate according to the method as claimed 
20 in Claim 1, to a device being arranged to operate as the first and/or second user facility in a 
system as claimed in Claim 3, and to a computer program product comprising computer 



implement a method as claimed in Claim 1. Further advantageous aspects of the invention are 
recited in dependent Claims. 

25 

BRIEF DESCRIPTION OF THE DRAWING 

These and further aspects and advantages of the invention will be discussed 
more in detail hereinafter with reference to the disclosure of preferred embodiments, and in 
particular with reference to the appended Figures that show: 
30 Figure 1> a system comprising various devices that are interconnected via a 

network and are arranged to operate in accordance with the invention; 



Now therefore, according to one of its aspects the invention is characterized 



The invention also relates to a system comprising a first user facility and a 



instructions for controlling one or more data processing oriented hardware entities to 



Figure 2, a generalization of the system of Figure 1, 
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MATHEMATICAL SKETCH OP THE PROCEDURE USED 

A basic embodiment of the present invention bases on the Weil pairing, which 
is a bilinear mapping from elliptic curves to finite fields. It is used to express the Discrete 
Log problem on finite fields in terms of compact representations on an elliptic curve. This 
5 procedure allows to use a shared secret data item and further parameters that can have bit 
lengths less than 200 bits, whilst still presenting codebreakers with computational 
complexities that compare with, or are larger than those of prior art systems to render such 
codebrealcing effectively unfeasible. The proposed system is furthermore very robust in that 
knowledge of the data of a finite number of participants will not give away the system secret 
10 which otherwise would have allowed the generation of new shared keys with arbitrary 
compliant users. 

Furthermore, every user or device has its own unique parameters, which 
allows to set up a revocation scheme on top of the standard scheme for excluding selected 
devices when such becomes necessary. As such, the system allows the generating of shared 
15 secret data items between any pair of users whilst requiring much less storage capacity than 
classical systems. 

Now, the proposed protocol of the present embodiment bases on an extended 
version of the DifiSe-Hellmann problem. Note that on an elliptic curve E, the Computational 
Di0e-Hellmann (CDS) problem looks as follows. Given a point P € E and given aP and bP, 

20 there exists no algorithm that computes #bP in polynomial time. Now, the present invention 
applies an extended Diffie-Hellmann problem or EDH which regarding the present - ' 

invention is defined as follows: 

P > aP, bP> <?P, b*P-* abP 
Admittedly, in tike generic model this will still poses a difficult problem for 

25 calculating. Incidentally, the Decision Diffie-Helltnann or DDH problem on an elliptic cuive 
is quite a bit more simple. The DDH problem is defined according to: when given three 
points aP, bp, cP, wherein P€E> decide whether or not cP = (a * b)P. This relative 
simplicity follows from an efficiently computable bilinear mapping known as the Weil 
Pairing, which will be further discussed below, furthermore the referenced publications will 

30 offer additional information. In particular, such groups where the DDH is relatively simple 
but CDH is difficult ate said to present a GAP Diffie-Hellmann group. Such groups are found 
in Abelian varieties, of which the supersingular elliptic curves ate a subcategory with 
dimension 1 thereof. Now, of various feasible such elliptic curves where the computational 
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Diffie-Hellmanu problem is difficult but the DDH is much easier, we use the following 
exemplary embodiment curves; 

E + :y*«x 3 + 2x+l over P3I 
E" :v a = 3 X 3 + 2x- loverF 3 l 
5 NoWj let < IP > be a subgroup of E / F p l of prime order £ with a security 

parameter a. This parameter oi must be large enough such that the Computational Diffie- 

Hellmann problem CBH^uffitf 

render the computing of the Decision Diffie-Hellmaan inefficiently difficult. Note that the 
security parameter of the two exemplary curves supra is a= 6 (see Boneh). Furthermore, we 
10 assume the availability of a distortion map D or group isomorphism at our disposal so that 
the point D ( P ) G E / F p l is linearly independent of the point P. The distortion map principle 
has been explicitly discussed in the publication by E. Verheul: "Evidence that XTR is more 
Secure than Supersingular Elliptic Curve Ciyptosystems", EUROCRYPT 2001. This 
distortion map then constitutes an efficiently computable isomorphism between the groups < 
15 P > and < D ( P ) >. Note that the elliptic curves of this example are only two among a large 
plurality thereof. 

Now, with two linearly independent points P and D ( P ) we can use the Weil 
Pairing to solve certain problems. Now, let E [ q ] denote the subgroup of E / Fplot that is 
generated by P andD ( P).Lithat case, me Weil Pairing is amap according to e : E [ q] xE 
20 [q]-* FV, and Which satisfies the following properties: 

1. ForPeElq]wehavee(P,P) = l. 

2. ForaUPl,P2eEIqLandr,sez > wehavee(aPl J bP2) = e(Pl,P2) ,,b ,the 
bilinearity property. 

3. If for P G E I q ] one has that e ( P, P' ) = 1 for all P* G E [ q ], then P = O: the non- 
25 degeneration property. 

4. For all PI, P2 C E [ q ] , the Weil Pairing e ( PI , P2 ) can be computed efficiently: the 
computability property. 

Then, the following scheme is set up. Each of two user facilities gets the 
following secret data items from a trusted third party, which items hereinafter being listed for 
30 user i (note that the trusted party may be one of the two cooperating user facilities) : 

5. (tn + riti 2 )P 

6. (tl2 + rit22)P 

Furthermore, the following two data items are provided as well: 

7. nD(P) 
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8.n z D(P) 

However, the latter two data items need not necessarily be kept secret, and in 
consequence may for example be stored in a public directory for later consultation. 
Furthermore, the following symmetric matrix T(Tj2 = T2i)is defined: 



ft t > 



\Ji2 tin J 



Furthermore, we introduce the vectors v ( r ) that are associated to a point r € 
Z , as follows: v ( r ) « (1 , r) . Now, thereafter the protocol proceeds as.fbllows; 

First, User 1 sends data nD(P),ri 2 D(P)to User 2, and furthermore, 
User 2 sends data r 2 »(P),r z 2 D(P)to User 1, followed by user 1 checking whether the 
triple 

r% D(P),r 2 D(P),r 2 z D(P) is a Diffie-Helhnann triple, and user 2 checking 
whether the triple n D(P),n D(P),r t 2 D(P)isaDiffie-Hellmarmtdple,andinthe 
positive oase both calculate the shared key by user 1 according to 
Hi=i 2 e((t,i + rit B )P,v(rOtD(P)) = e(P,DW 

key. Herein t« = t 2 i and v(r 2 ) Stands for the i-th component of the vector vfrz). It can be 
proven that the security of the above protocol is high. The security in effect primarily resides 
on the finding that me ^^rfa*2>i^ - 

Additional measures to former raise the security level are a hashing of the 
generated shared key together with the applying of a time stamp. Furthermore, the generating 
protocol for generating a shared secret can be used as an initial step of an identification 
procedure as disclosed in EP Patent Application 02 075 983.3, attorney docket PHNL020192 
and assigned to me same assignee as the present Application. 

Furthermore, the protocol can be made more efficient by already computing 
the evaluation of the Weil Pairing e ( ( t u + r 1 1 1 2 ) P, P ( P ) ) in advance. This will avoid 
the necessity to do the computation of this Weil Pairing at the execution of the protocol 
proper, although at atrading-off price of araised storage requirement. 

DETAILED DESCRIPTION OF PREFERRED EMBODIMENTS 

Figure 1 illustrates a system 100 comprising various devices 101-105 that are 
interconnected via a network and are arranged to operate in accordance with the invention. 
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By way of example, the system is an in-home system, that may comprise devices such as a 
radio receiver, a television set, etcetera. Generally, a particular device is the system master, 
and will control the others. Content is generally received through one or more of the devices, 
such as a residential gateway or settop box 101, from an external source, such as broadband, 
5 Internet or satellite. Eventually, the content is transferred over the network for appropriate 
rendering in one of the devices. 

Typically, all devices in the in-home network will implement the security 
framework in accordance with the implementation requirements. Using this framework, these 
devices can authenticate each other and distribute content in a secure manner. Access to the 

10 content proper will be managed by the security system. This will prevent against unprotected 
content leaking away to unauthorized devices and also, against data originating from 
untrusted devices entering into the system. With such protection, devices may only distribute 
content to other devices which they have succesfrdly authenticated beforehand This ensures 
that an adversary may not receive unauthorized copies through a malicious device. A 

15 particular device will only be able to sucoesfoUy authenticate itself if it was built by an 
authorized manufacturer, for example because only authorized manufacturers will know a 
particular secret that is necessary for succesfhl authentication, because their devices are 
provided with a certificate issued by a Trusted Third Party, 

Figure 2 illustrates a generalization of the system of Figure 1. Here, a Prover 

20 P, a Verifier V, and a trusted third party TTP cooperate. Now, the Verifier V should want to 
authenticate the prover P through using infoimation received from the Trusted Tird Party 
TTP. Preferably, the authentication should be mutual, so that also the Prover P would know 
that the Verifier V were authentic. 

The information necessary to authenticate the Verifier V to the Prover P is 

25 assumed to have been distributed beforehand from the TTP to the parties P and V. This can 
be done over a suitable communication facility between the three parties. This renders the 
protocol dynamic and allows updating of the information in case an adversary would manage 
to obtain unauthorised access to a secret distributed previously. 

The prover P and verifier V can be devices such as carrier 120 in Figure 1, that 

30 is equipped with a chip that provides the necessary functionality, and furthermore the audio 
playback device 105. In such case, there will most likely be no communication channel from 
the TTP to Prover P and Verifier V. Distribution of the secrets must then be effected 
beforehand, such as during manufacturing. 
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Now, the prover comprises a networking module 301, a cryptographic 
processor 302, and a storage medium 303. Using the networking module 301, Prover P can 
transmit and receive data with respect to the Verifier V. The networking module 301 could be 
connected to the network 1 10 in Figure 1, or rather establish a direct connection such as 
5 wireless with the verifier V. 

The cryptographic processor 302 is arranged to execute the method according 
to the present invention. Usually, this processor 302 will be realized as a combination of 
hardware and software, but alternatively it could be realized entirely in either one of these, 
such as by a collection of software modules or objects. 
10 Now the Prover P may store in the storage medium various parameters of the 

algorithm to execute, but it may furthermore also hold some content to distribute to the 
Verifier V after succesfiil authentication. The storage medium 303 may furthermore be used 
to store the information received from the TTP, To enhance the security of the system, rather 
than storing the individual parameter data, one or more intermediate calculation results could 
15 be stored instead or additionally. 

Similarly, the Verifier V comprises anetworking module 31 1, a cryptographic 
processor 312, and a storage facility 313 with the functionality thereof corresponding to that 
of the Prover P. If the Verifier V is embodied as a carrier with a Chip-in-Disc, then the 
storage facility 3 13 may correspond to the storage available to any optical or other disc, but 
20 will preferably be stored in ROM of the Chip-in-Disc, 

Additionally, the Prover P and the Verifier V may be provided with a pseudo- 
random number generator 304, 314 that is realized in hardware or software, and provides 
cryptographically strong pseudo-random numbers. These numbers are used in various 
preferred applications of the present invention, 

25 

SUPPLEMENTARY MATHEMATICAL REPRESENTATION 

Hereabove, the generation of the common secret key was effected according 

to: 

K„-F(S 8 ,Pj) — FCSj^POKIjl, 
30 Whereas the following data were transferred: 
$i = f T (r f ) (5,6)„and 
Pp-g(n) (7,8) 

Another representation of the transmitted data items is according to 
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(5') 

(«') 
(70 

5 Pi2 = ri 2 P (SO 

Here, T 4 = t q * P, and the numerals indicating the correspondence with the earlier 



Si 
Pi 



Si 2 = T 2 i + riTi2 
pn = nP 



representation. 
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CLAIMS: 



1 , A method for generating a common secret data item between a first user 

facility i and a second user facility j through by each such, user facility executing mutually 
symmetric operations on respective complementary data items that are based on respectively 
unique quantities and that are at least in part secret, and wherein an outcome of said 
5 operations is used in both said user facilities as said common secret data item, 
said method being characterized in being based on defining said 
complementary data belonging to a GAP Diffie-Hellmann Problem that is defined in an 
Abelian Variety. 

10 2. A method as claimed in Claim 1, wherein said Abelian Variety has a 

dimension one through being an elliptic curve, 

3. a method as olaimed in Claim 1, comprising applying a pairing P featuring a 
bilinearity property, a non-degeneration property, and a computability property to two 

15 linearly independent points P and D(P) on said Abelian Variety. 

4. A method as claimed in Claim 1 , wherein said operations for user facility i are 
based on one-way functions U g according to Si <= fr ( rj ) and P, - g ( r\ ), wherein parameter 
T is a master secret acquired from a trusted master facility, outcome S is being maintained 

20 seoret, and common secret data are calculated according to 

Ktj - F ( Si , Pj >> F ( Sj , Pj ) = K lt . 

5< a method as claimed in Claim 4, wherein said operations base on data S i and 

Pi 

25 Si:s n = Tn + nT«; (5') s B = T ai + r i T il ; 0>) 

P,:pu = r|P; C 9 > Pi2-r f 2 P; <*'). 

6. A method as claimed in Claim 1 , wherein user facility 1 sends data 

ir 1 D(P) J ri*P(P)to user facility 2, user facility 2 sends data 
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r 2 I>(P),r 2 2 D(P)to user facility 1 , followed by user facility 1 checking whether the 
triple 

r 2 D(P),r 2 D(P),r 2 2 D(P)is aDiffie-Hellmaitolripl^ 

the triple ri D(P),ii D(P),r x 2 D ( P ) is aDiffie-Hellmann triply and in the positive 
case calculating the common secret by user facility 1 according to 
nk-i 2 e((tid + r 1 t k2 )P,v(r 2 )kD(P)) = e(P 5 D(P)) w V^ ( V > 



wherein t X2 - t 2 i and v(r 2 )k stands for the k-th component of the vector vCr*), 



7. A method as claimed in Claim 1, and finlhermore comprising a revocation 
1 0 scheme on top of its standard scheme for excluding one or more selected user facilities 

through assigning to every user facility its own unique parameters. 

8. A method as claimed in Claim 1, wherein the generating of such shared secret 
is used as an initial step in an identification or authentication procedure, 

15 

9. A method as claimed in Claim 1 9 wherein the WeU Pairing is evaluated at an 
instant in time that lies substantially before executing the protocol proper. 

10. A method as claimed in Claim 1, and comprising an updating of secret 
20 information against divulgation of an earlier secret information. 

11. A method as claimed in Claim 1, and being executed through using only a 
single integrated cryptography leveL 

25 12. A method as claimed in Claim 1, where a randomization scheme is applied to 

the common secret. 



13. A method as claimed in Claim 12, where the randomization scheme is based 
on a challenge-response mechanism, 

30 

14. A sy$tera comprising a first user facility and a second user facility, and being 
arranged to communicate according to the method as claimed in Claim 1. 
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15, a device being arranged to operate as the first and/or second user facility in a 
system as claimed in Claim 14. 

16. A computer program product comprising instructions for controlling one or 

5 more data processing oriented hardware entities to implement a method as claimed in Claim 
1. 
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ABSTRACT: 



A method for generating a common secret data item between a first user 
Jacility and a second user facility does so throughi?Y_ga£^^ executing 
symmetric operations on respective complementary data items that are based on respectively 
unique quantities and that are at least in part secret An outcome of the operations is used in 
both said user facilities as said common secret data item. In particular, the method is based on 
defining the complementary data belonging to a GAP Diffie-Hellmann Problem that is 
defined in an Abelian Variety. More in particular* the Abelian Variety has a dimension one 
through being an elliptic curve. 



10 Pig. 1 



cjq . our , cxyac. 



PHNL020950 



019 20.09.2002 11:45 



1/2 




oxj . ocr . cKjtjc. xx • -tv i ■ ixi_xi -< 1 1>- ■ wx -■— — • - nu.tjfu t-.tcj^cia 

020 20.09.2002 11 



PHNL020950 



2/2 




FIG.2 



This Page is Inserted by IFW Indexing and Scanning 
Operations and is not part of the Official Record 



Defective images within this document are accurate representations of the original 
documents submitted by the applicant. 

Defects in the images include but are not limited to the items checked: 

□ BLACK BORDERS 

□ IMAGE CUT OFF AT TOP, BOTTOM OR SIDES 

□ FADED TEXT OR DRAWING 

□ BLURRED OR ILLEGIBLE TEXT OR DRAWING 

□ SKEWED/SLANTED IMAGES 

□ COLOR OR BLACK AND WHITE PHOTOGRAPHS 

□ GRAY SCALE DOCUMENTS 



1^1 LINES OR MARKS ON ORIGINAL DOCUMENT 

□ REFERENCE(S) OR EXHIBIT(S) SUBMITTED ARE POOR QUALITY 

□ OTHER: 



IMAGES ARE BEST AVAILABLE COPY. 
As rescanning these documents will not correct the image 
problems checked, please do not report these problems to 
the IFW Image Problem Mailbox. 



BEST AVAILABLE IMAGES 




